I see this as a non-issue compared to what we already know, to be honest.
As far as I can tell, this particular vulnerability was patched in firmware version 1.6.1 which came out in March 2018, 4 years ago. And as we've known for a long time, regardless of what is happening here, seed extraction is still a possibility with Trezor devices for other reasons. Everyone with a Trezor device should be using a long and complex passphrase (or ideally, several different ones), which mitigates the risk of both vulnerabilities.
And as always, the likelihood of your coins being stolen by such a method is minuscule compared to your coins being stolen by user mistake, phishing, etc.
It seems that physical access to the device will mean that the password will be hacked and therefore your coins will be lost.
This has always been my approach. If I was to lose any device with bitcoin on it - hardware wallet, mobile wallet, encrypted cold storage, whatever - then I would be moving the coins to new wallets as soon as possible. A hardware wallet will buy you time, but it shouldn't be seen as infallible.